Windows on Siddharth Mishra

Creating Rizin Plugins - Lessons Learned

Tue, 25 Mar 2025 00:00:00 +0000

Introduction

I’ve been developing and maintaining a Rizin plugin for past ten months for a startup, RevEngAI. The plugin is used to communicate with RevEngAI servers to upload binaries you’re analyzing in Rizin/Cutter and then perform an AI based analysis in the background, and then retrieve the analysis results back from the servers and apply the results to Rizin’s own analysis. The number of features keep growing day by day as the team works on improving their product.

One Instruction Set Computer Challenge from TetCTF - NOR VM (Elvis's Magic Box)

Fri, 10 Feb 2023 07:07:01 +0000

Elvis Magic Box

After completing the previous CrackMe based on a very good Anti-Debug technique (which can be further improved as I pointed out in that post by reading a research paper), Elvis, the author of previous challenge gave me another challenge. He already gave me a major hint about the challenge which you usually don’t get in real world scenarios. This challenge is another VM challenge and is an OISC (One Instruction Set Computer)

Elvis Protected CrackMe

Sat, 28 Jan 2023 05:48:16 +0000

Elvis Protected CrackMe

If the named mutex MATESCTF_2019 is not present then the control flows into second function. I debugged the process and it enters into the second one by default as it should (as expected because from the beginning, there are no mutices created automatically). There are interesting things coming… Wait for it!

The decompiled code looks like this. Pretty neat and clean (as expected for windows programs).